Traffic Mirroring Commands on the Cisco IOS XR Software



Similar documents
Traffic Mirroring Commands on the Cisco ASR 9000 Series Router

Configuring Traffic Mirroring on the Cisco ASR 9000 Series Router

Configuring the Firewall Management Interface

Configuring NetFlow-lite

Configuring NetFlow Secure Event Logging (NSEL)

Flow-Based per Port-Channel Load Balancing

Configuring NetFlow on Cisco ASR 9000 Series Aggregation Services Router

Configuring Flexible NetFlow

Configuring NetFlow on Cisco IOS XR Software

Implementing Object Tracking on Cisco IOS XR Software

Configuring Link Bundling on Cisco IOS XR Software

Configuring MAC ACLs

Configuring NetFlow Secure Event Logging (NSEL)

Configuring a Load-Balancing Scheme

Easy Performance Monitor

Configuring DHCP Snooping

Easy Performance Monitor

Configuring a Load-Balancing Scheme

Latency Monitoring Tool on Cisco Nexus Switches: Troubleshoot Network Latency

NetFlow-Lite offers network administrators and engineers the following capabilities:

Firewall Stateful Inspection of ICMP

Adding an Extended Access List

AutoQoS. Prerequisites for AutoQoS CHAPTER

Configuring NetFlow. Information About NetFlow. NetFlow Overview. Send document comments to CHAPTER

NetFlow Aggregation. Feature Overview. Aggregation Cache Schemes

Lab Introduction to the Modular QoS Command-Line Interface

Easy Performance Monitor

NetFlow Policy Routing

Configuring a Load-Balancing Scheme

Cisco IOS Flexible NetFlow Technology

Configuring NetFlow. Information About NetFlow. NetFlow Overview. Send document comments to CHAPTER

Firewall Authentication Proxy for FTP and Telnet Sessions

Chapter 11 Network Address Translation

Firewall Stateful Inspection of ICMP

Enabling NetFlow and NetFlow Data Export (NDE) on Cisco Catalyst Switches

Embedded Event Manager Debug Commands on Cisco IOS XR Software

Troubleshooting the Firewall Services Module

Monitoring Traffic Interception

Table of Contents. Cisco Using the Cisco IOS Firewall to Allow Java Applets From Known Sites while Denying Others

Configuring NetFlow Switching

Configuring SNMP and using the NetFlow MIB to Monitor NetFlow Data

Configuring Traffic Storm Control

Monitoring Network Traffic Using SPAN

Call Flows for Simple IP Users

Configuring Network Security with ACLs

Configuring Static and Dynamic NAT Simultaneously

NetStream (Integrated) Technology White Paper HUAWEI TECHNOLOGIES CO., LTD. Issue 01. Date

Configuring LLDP, LLDP-MED, and Location Service

Implementation Note for NetFlow Collectors

Flow Monitor Configuration. Content CHAPTER 1 MIRROR CONFIGURATION CHAPTER 2 RSPAN CONFIGURATION CHAPTER 3 SFLOW CONFIGURATION...

Lab Configure Cisco IOS Firewall CBAC

Packet-over-SONET Interface Commands on the Cisco IOS XR Software

FIREWALLS & CBAC. philip.heimer@hh.se

NetFlow Subinterface Support

Sampled NetFlow. Feature Overview. Benefits

Configure Policy-based Routing

Enabling Remote Access to the ACE

Configuring Network Address Translation

Network Configuration Example

Appendix A Remote Network Monitoring

Configuring QoS and Per Port Per VLAN QoS

DHCP Server Port-Based Address Allocation

Controlling Access to a Virtual Terminal Line

GLBP - Gateway Load Balancing Protocol

VRRPv3: Object Tracking Integration

Configuring Redundancy

SolarWinds Technical Reference

Lab 2 - Basic Router Configuration

Chapter 4 Rate Limiting

Firewall Support for SIP

Cisco ASA and NetFlow Using ASA NetFlow with LiveAction Flow Software

Flow Monitor Configuration. Content CHAPTER 1 MIRROR CONFIGURATION CHAPTER 2 SFLOW CONFIGURATION CHAPTER 3 RSPAN CONFIGURATION...

Ethernet Overhead Accounting

How To Mirror On An Ipfix On An Rspan Vlan On A Pc Or Mac Or Ipfix (Networking) On A Network On A Pnet (Netnet) On An Uniden (Netlan

Cisco Configuring Commonly Used IP ACLs

Using Cisco IOS Software

Monitoring Network Traffic Using SPAN

SolarWinds Technical Reference

DNS Commands ip dns spoofing

Troubleshooting Bundles and Load Balancing

How To Block On A Network With A Group Control On A Router On A Linux Box On A Pc Or Ip Access Group On A Pnet 2 On A 2G Router On An Ip Access-Group On A Ip Ip-Control On A Net

MPLS VPN Route Target Rewrite

CCNA 2 v5.0 Routing Protocols Final Exam Answers

Unicast Reverse Path Forwarding

Lab Configure Cisco IOS Firewall CBAC on a Cisco Router

AlliedWare Plus OS How To. Configure QoS to prioritize SSH, Multicast, and VoIP Traffic. Introduction

Monitoring and Analyzing Switch Operation

NetVanta Series (with Octal T1/E1 Wide Module)

Configuring Static and Dynamic NAT Translation

Configuring Auto-QoS

NetFlow Auditor Manual Getting Started

Lab Configure IOS Firewall IDS

Configuring Port Security

How To Import Ipv4 From Global To Global On Cisco Vrf.Net (Vf) On A Vf-Net (Virtual Private Network) On Ipv2 (Vfs) On An Ipv3 (Vv

How To Install Cisco Asr 9000 Series Router Software On A Mini Mini Mini (Cisco Ios) Router

SolarWinds Technical Reference

Cisco IOS Flexible NetFlow Command Reference

Multiprotocol Label Switching Load Balancing

CCT vs. CCENT Skill Set Comparison

Implementing MPLS VPNs over IP Tunnels

Transcription:

Traffic Mirroring Commands on the Cisco IOS XR Software This module describes the commands used to configure and monitor traffic mirroring. acl, page 2 clear monitor-session counters, page 4 destination next-hop, page 6 mirror first, page 7 monitor-session, page 8 monitor-session (interface), page 9 show monitor-session status, page 11 show monitor-session counters, page 13 Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 1

acl Traffic Mirroring Commands on the Cisco IOS XR Software acl To configure ACL-based traffic mirroring, use the acl command in monitor session configuration mode. To stop ACL-based traffic mirroring, use the no form of this command. acl This command has no keywords or arguments. No default behavior or values Monitor session configuration 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. If you use the acl command, traffic is mirrored according to the definition of the global interface access list (ACL) defined in one of the following commands: ipv4 access-list, ipv6 access-list, ethernet-services access-list. Even when the acl command is configured on the source mirroring port, if the ACL configuration command does not use the capture keyword, no traffic gets mirrored. If the ACL configuration uses the capture keyword, but the acl command is not configured on the source port, although traffic is mirrored, no access list configuration is applied. This example shows how to configure ACL-based traffic mirroring on the interface: RP/0/RP0/CPU0:router(config)# monitor-session tm_example RP/0/RP0/CPU0:router(config)# ethernet-services access-list tm_filter RP/0/RP0/CPU0:router(config-es-acl)# 10 deny 0000.1234.5678 0000.abcd.abcd any capture RP/0/RP0/CPU0:router(config-es-acl)# exit RP/0/RP0/CPU0:router(config)# interface GigabitEthernet0/2/0/0 RP/0/RP0/CPU0:router(config-if)# monitor-session tm_example direction rx-only RP/0/RP0/CPU0:router(config-if)# acl RP/0/RP0/CPU0:router(config-if)# l2transport RP/0/RP0/CPU0:router(config-if-l2)# exit RP/0/RP0/CPU0:router(config-if)# ethernet-services access-group tm_filter ingress RP/0/RP0/CPU0:router(config-if)# end Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 2 OL-30349-01

Traffic Mirroring Commands on the Cisco IOS XR Software acl Related Commands Command ethernet-services access-list ipv4 access-list ipv6 access-list Description Defines an Ethernet services (Layer 2) access list by name. Defines an IPv4 access list by name. Defines an IPv6 access list by name. Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 3

clear monitor-session counters Traffic Mirroring Commands on the Cisco IOS XR Software clear monitor-session counters To clear the traffic mirroring session statistics, use the clear monitor-session counters command in EXEC mode. clear monitor-session counters [ session-name ]{ipv4 ipv6} interface type interface-path-id session-name ipv4 ipv6 Identifies the interface for which the counters are to be cleared. Interface type. For more information, use the question mark (?) online help function. Physical interface or virtual interface. Note Use the show interfaces command to see a list of all interfaces currently configured on the router. For more information about the syntax for the router, use the question mark (?) online help function. Name of the monitor session to clear. Specifies an ipv4 address. Specifies an ipv6 address. All stored statistics for all interfaces are cleared. EXEC 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. Task ID Task ID interface Operations read Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 4 OL-30349-01

Traffic Mirroring Commands on the Cisco IOS XR Software clear monitor-session counters This example shows how to clear the traffic mirroring statistic counters: RP/0/RP0/CPU0:routerclear monitor-session mon1 ipv6 counters Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 5

destination next-hop Traffic Mirroring Commands on the Cisco IOS XR Software destination next-hop To configure the destination address for the monitor-session, use the destination next-hop command in the monitor session configuration mode. destination next-hop ip address ip address Specifies a valid IPv4 or IPv6 address and configures the destination for the current monitor-session to be a next-hop IP address (whose type matches that of the monitor-session). No default behavior or values Monitor session configuration 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. This may only be specified for ipv4 and ipv6 monitor-sessions. A monitor session can be either for IPv4 or for IPv6. It cannot support both together. Task ID Task ID ethernet-services Operation read, write This example shows how to execute the destination next-hop command: RP/0/RP0/CPU0:routerconfigure RP/0/RP0/CPU0:routerdestination next-hop ipv4 254.23.24.5 Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 6 OL-30349-01

Traffic Mirroring Commands on the Cisco IOS XR Software mirror first mirror first To configure partial traffic mirroring, use the mirror first command in monitor session configuration mode. To stop mirroring a portion of the packet, use the no form of this command. mirror first bytes bytes Number of bytes mirrored. The mirrored packet length value can range from 65 to 128. The entire packet is mirrored. Monitor session configuration 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. Use the mirror first command to mirror the first 64 to 128 bytes of the packet. The actual mirrored packet is the configured partial packet monitoring size plus the 4-byte trailing CRC. This example shows how to mirror the first 100 bytes of the packet: RP/0/RP0/CPU0:router(config)# interface gigabitethernet0/0/0/11 RP/0/RP0/CPU0:router(config-if)# monitor-session mon1 RP/0/RP0/CPU0:router(config-if-mon)# mirror first 100 Related Commands Command monitor-session, on page 8 Description Defines a traffic mirroring session and enter monitor session configuration mode. Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 7

monitor-session Traffic Mirroring Commands on the Cisco IOS XR Software monitor-session To define a traffic mirroring session and enter monitor session configuration mode, use the monitor-session command in global configuration mode. To remove the traffic mirroring session, use the no form of this command. monitor-session session-name{ipv4 ipv6} no monitor-session session-name session-name ipv4 ipv6 Name of the monitor session to configure. Specifies an ipv4 address as destination. Specifies an ipv6 address as destination. No default behavior or values Global configuration 4.3.0 Before you can assign a monitor session to a specific interface, you must configure it using the monitor-session command. The session-name should not be the same as any interface name. In monitor session configuration mode, you should define the destination interface to be used in the traffic mirroring session using the destination command. This commands triggers entry in to the monitor-session sub-mode and creates the session. The session will be non-operable until a destination is configured for the session. The destination can be either IPv4 or IPv6. This example shows how to enter monitor session configuration mode: RP/0/RP0/CPU0:router(config)# monitor-session mon1 RP/0/RP0/CPU0:router(config-mon)# Related Commands Command destination next-hop, on page 6 Description Configures the destination for the current monitor-session. Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 8 OL-30349-01

Traffic Mirroring Commands on the Cisco IOS XR Software monitor-session (interface) monitor-session (interface) To associate a traffic mirroring session with a specific interface, use the monitor-session command in interface configuration mode. To remove the association between a traffic mirroring session and an interface, use the no form of this command. monitor-session session-name {ipv4 ipv6}[direction {rx-only}] no monitor-session session-name {ipv4 ipv6}[direction {rx-only}] session-name direction rx-only ipv4 ipv6 Name of the monitor session to configure. Specifies that traffic replication is in only one direction. Specifies that only ingress traffic is replicated. Indicates that Ipv4 traffic needs to be monitored. Indicates that Ipv6 traffic needs to be monitored. Replicates both ingress and egress traffic. Interface configuration 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. Before you can associate a traffic mirroring session to a specific interface, you must define it using the monitor-session global configuration command. After the traffic mirroring session is defined, use the monitor-session interface configuration command to associate this session with a specific source interface. When the session is associated, all specified traffic on the interface is then replicated to the destination location defined in the monitor session configuration. The monitor-session interface configuration command also enters monitor session configuration mode for you to configure additional features of the mirroring session. Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 9

monitor-session (interface) Traffic Mirroring Commands on the Cisco IOS XR Software Task ID Task ID interface Operations read, write This example shows a sample configuration of the monitor-session command in the interface configuration mode: RP/0/RP0/CPU0:router# configure RP/0/RP0/CPU0:router(config)# interface gigabitethernet0/2/0/0 RP/0/RP0/CPU0:router(config-if)# monitor-session test ipv4 rx-only RP/0/RP0/CPU0:router(config-if)# acl Related Commands Command monitor-session, on page 8 Description Defines a traffic mirroring session and enter monitor session configuration mode. Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 10 OL-30349-01

Traffic Mirroring Commands on the Cisco IOS XR Software show monitor-session status show monitor-session status To display status information about configured traffic mirroring sessions, use the show monitor-session status command in EXEC mode. show monitor-session [ session-name ] status [detail] [errors] session-name detail errors Name of the monitor session to configure. Displays the full error string for any errors. Displays all sessions, but only source interfaces with errors are displayed (if no source interfaces have errors, then 'No errors' is displayed). No default behavior or values EXEC 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. The show monitor-sessions status command displays the following information: Destination information for the session (including the name of the interface). Destination status (interface state). List of source interfaces. Any other status information that may be pertinent, such as a software or hardware error that would stop sessions operating correctly. If an error is returned from interactions with another component, then the full error string is only displayed in detail output; standard tabular output reports that there has been an error but refers the user to the detailed output. This example shows the sample output for the show monitor-session status detail command: RP/0/RP0/CPU0:router show monitor-session status detail Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 11

show monitor-session status Traffic Mirroring Commands on the Cisco IOS XR Software Monitor-session foo Destination interface GigabitEthernet 0/0/0/0 Source Interfaces ----------------- GigabitEthernet 0/1/0/0.100: Direction: Both Status: Operating GigabitEthernet 0/2/0/0.200: Direction: Rx Status: Error: <blah> Monitor session bar No destination configured Source Interfaces ----------------- GigabitEthernet 0/3/0/0.100: Direction: Rx Status: Not operational(no destination interface) Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 12 OL-30349-01

Traffic Mirroring Commands on the Cisco IOS XR Software show monitor-session counters show monitor-session counters To display statistics regarding traffic mirroring sessions, use the show monitor-session counters command in EXEC mode. show monitor-session [ session-name ] {ipv4 ipv6}counters session-name ipv4 ipv6 Name of the monitor session to configure. Specifies the counters of next-hop ipv4 address associated with a monitor-session. Specifies the counters of next-hop ipv6 address associated with a monitor-session. If you do not specify an address, the IPv4 counters are displayed. EXEC 4.3.0 To use this command, you must be in a user group associated with a task group that includes appropriate task IDs. If the user group assignment is preventing you from using a command, contact your AAA administrator for assistance. The show monitor-sessions counters command displays a list of all source interfaces, and the replicated packet statistics for each interface. The full set of statistics displayed for each interface is: Ingress replicated packets and octets Egress replicated packets and octets Non-replicated packets and octets This example shows sample output from the show monitor-session counters command: RP/0/RP0/CPU0:router show monitor-session 2 counters Global Non Replicated : 100 Packets 8000 Bytes Monitor session test1 ipv4 Next Hop : 20.1.1.1 Rx Replicated: 100 Packets 8000 Bytes Monitor session test2 Next Hop : 30.1.1.1 Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x OL-30349-01 13

show monitor-session counters Traffic Mirroring Commands on the Cisco IOS XR Software Rx Replicated: 200 Packets 16000 Bytes Cisco IOS XR Interface and Hardware Component Command Reference for the Cisco CRS Router, 5.1.x 14 OL-30349-01

2026 © DocPlayer.net Privacy Policy | Terms of Service | Feedback  | Do Not Sell My Personal Information